ELSA-2021-3945

ELSA-2021-3945 - redis:6 security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-10-20

Description


[6.0.9-5]
- fix denial of service via Redis Standard Protocol (RESP) request
CVE-2021-32675

[6.0.9-4]
- fix lua scripts can overflow the heap-based Lua stack
CVE-2021-32626
- fix integer overflow issue with Streams
CVE-2021-32627
- fix integer overflow bug in the ziplist data structure
CVE-2021-32628
- fix integer overflow issue with intsets
CVE-2021-32687
- fix integer overflow issue with strings
CVE-2021-41099


Related CVEs


CVE-2021-32626
CVE-2021-32627
CVE-2021-32628
CVE-2021-32675
CVE-2021-41099
CVE-2021-32687

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) redis-6.0.9-5.module+el8.4.0+20384+68ad316c.src.rpm3ed07de157f99e39afc15393e333d788-
redis-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm3f28905e7720990ca2ad57892a44a39a-
redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm3d0a0ca78465ba5e91b99827d97eb1ca-
redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm9dbc5fd1587af31bcc735e8011e90eee-
Oracle Linux 8 (x86_64) redis-6.0.9-5.module+el8.4.0+20384+68ad316c.src.rpm3ed07de157f99e39afc15393e333d788-
redis-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm43d82cb7b8bb33c5ad196f22ec8ba93b-
redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm4123e2f32309a17362c91644f3acf38a-
redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm9dbc5fd1587af31bcc735e8011e90eee-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete